$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa File: 3130332e31312e32382e302f32322d3232203d3e203538353532.roa (raw, json) Hash identifier: wLLmm3gfzRDPmx2xUBm1TBBw8pr1BLVhADkFUbnpUqI= Subject key identifier: ED:E7:7C:8C:0A:33:40:9B:E5:E5:57:23:7D:6A:45:62:C3:76:17:93 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 6F9F86D75AB69231C665F98F9C0BE09E3907FCF2 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa Signing time: Mon 02 Jun 2025 01:03:10 +0000 ROA not before: Mon 02 Jun 2025 00:58:10 +0000 ROA not after: Mon 01 Jun 2026 01:03:10 +0000 asID: 58552 IP address blocks: 103.11.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9f:86:d7:5a:b6:92:31:c6:65:f9:8f:9c:0b:e0:9e:39:07:fc:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:10 2025 GMT Not After : Jun 1 01:03:10 2026 GMT Subject: CN=EDE77C8C0A33409BE5E557237D6A4562C3761793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4a:54:64:e3:c0:64:20:f9:1e:48:eb:e1:1f: 0e:99:7d:4f:a4:a3:e4:d6:08:c8:df:55:ed:be:db: 76:f5:a9:62:2f:c9:66:4e:5e:95:5b:3a:97:4b:08: 07:e6:c1:48:9a:c8:2f:1c:23:be:3c:46:e2:e5:19: 61:e4:8d:4d:07:ba:dd:0c:a1:54:c0:79:d7:5b:97: 06:39:39:a8:48:01:6f:1d:09:0d:9d:53:f1:7e:74: 1d:02:7f:4b:a3:c3:0b:6f:5b:3c:ab:27:0b:d4:4c: b8:d6:e9:ff:16:79:2f:b2:2a:b0:d9:10:88:1f:14: 31:a3:45:61:06:6b:1f:2f:f1:2f:30:1f:45:ee:dc: 68:3c:97:61:b4:6f:b6:8e:9a:41:44:d7:50:d3:3e: 24:17:33:ba:5c:1b:70:1a:cc:80:17:a4:ee:b4:a1: ed:14:a3:56:4d:b8:66:58:c8:2d:33:df:6a:fa:52: f3:4d:ef:12:a3:4a:6b:c5:8d:62:f4:7f:da:12:58: 1d:a5:fd:66:c5:de:a2:28:df:f9:66:60:b7:5d:16: d9:14:94:88:d8:d9:dd:16:06:51:32:9b:95:e3:81: ab:6d:8d:e3:2c:91:b2:56:c6:c1:43:51:a4:c9:f4: b7:01:e9:4c:94:43:66:02:25:a2:7c:69:97:8f:06: 48:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E7:7C:8C:0A:33:40:9B:E5:E5:57:23:7D:6A:45:62:C3:76:17:93 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.28.0/22 Signature Algorithm: sha256WithRSAEncryption 90:70:03:d7:b3:f7:ea:b3:78:a1:d8:aa:59:e8:4d:36:0c:82: 90:ff:b4:b8:ec:38:e1:e3:f9:44:ae:75:7b:78:11:dc:9d:23: 23:f3:2b:98:fd:6f:21:47:6f:fd:79:56:a4:c7:00:d7:4f:c2: 1a:63:44:ac:d6:84:98:bc:31:fd:9c:15:ce:46:a6:df:f7:fd: 95:9f:cb:04:17:2d:13:a3:53:5f:21:70:8a:f6:06:63:bb:29: 68:d7:b8:bf:71:8a:f1:db:fd:7b:11:7a:e8:17:c2:2f:47:98: a1:10:bb:53:b5:4d:87:b6:ae:da:63:af:42:21:bd:b9:73:5a: a4:36:87:22:64:bd:53:8b:07:58:4c:4b:6c:f6:94:71:a9:89: 66:e0:9b:1d:97:c8:03:ba:46:64:e4:8f:ed:a6:b9:18:c6:84: 7c:f7:9b:63:69:1c:42:8b:ba:5e:69:ca:e2:18:15:e0:d8:62: 35:4f:b4:df:b5:57:ec:0d:9a:44:2d:8c:c8:04:21:24:c4:82: bc:8e:7e:ed:0f:3b:d9:dd:d4:73:8c:72:20:fa:6a:a5:90:6c: 81:ce:08:0f:44:76:69:22:06:47:ea:0f:83:b3:b0:dd:30:6a: 49:a3:eb:7d:0a:79:e9:bb:91:fb:18:42:87:cf:c7:75:fa:d8: b5:bb:e4:df -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUb5+G11q2kjHGZfmPnAvgnjkH/PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MTBaFw0yNjA2MDEwMTAzMTBaMDMxMTAvBgNV BAMTKEVERTc3QzhDMEEzMzQwOUJFNUU1NTcyMzdENkE0NTYyQzM3NjE3OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3SlRk48BkIPkeSOvhHw6ZfU+k o+TWCMjfVe2+23b1qWIvyWZOXpVbOpdLCAfmwUiayC8cI748RuLlGWHkjU0Hut0M oVTAeddblwY5OahIAW8dCQ2dU/F+dB0Cf0ujwwtvWzyrJwvUTLjW6f8WeS+yKrDZ EIgfFDGjRWEGax8v8S8wH0Xu3Gg8l2G0b7aOmkFE11DTPiQXM7pcG3AazIAXpO60 oe0Uo1ZNuGZYyC0z32r6UvNN7xKjSmvFjWL0f9oSWB2l/WbF3qIo3/lmYLddFtkU lIjY2d0WBlEym5XjgattjeMskbJWxsFDUaTJ9LcB6UyUQ2YCJaJ8aZePBkhvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7ed8jAozQJvl5VcjfWpFYsN2F5MwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzIzODJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCxwwDQYJKoZIhvcN AQELBQADggEBAJBwA9ez9+qzeKHYqlnoTTYMgpD/tLjsOOHj+USudXt4EdydIyPz K5j9byFHb/15VqTHANdPwhpjRKzWhJi8Mf2cFc5Gpt/3/ZWfywQXLROjU18hcIr2 BmO7KWjXuL9xivHb/XsReugXwi9HmKEQu1O1TYe2rtpjr0IhvblzWqQ2hyJkvVOL B1hMS2z2lHGpiWbgmx2XyAO6RmTkj+2muRjGhHz3m2NpHEKLul5pyuIYFeDYYjVP tN+1V+wNmkQtjMgEISTEgryOfu0PO9nd1HOMciD6aqWQbIHOCA9EdmkiBkfqD4Oz sN0wakmj630Keem7kfsYQofPx3X62LW75N8= -----END CERTIFICATE-----Generated at Sat Jun 7 23:10:50 2025 by rpki-client